Stars
An orchestrated sub agent dev team powered by claude code
Gospider - Fast web spider written in Go
Push-button installer of macOS Catalina, Mojave, and High Sierra guests in Virtualbox on x86 CPUs for Windows, Linux, and macOS
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
The FLARE team's open-source tool to identify capabilities in executable files.
Package goth provides a simple, clean, and idiomatic way to write authentication packages for Go web applications.
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Vulnerable thick client applications used as examples in the Introduction to Hacking Desktop Applications blog series
Convolutional neural network for analyzing pentest screenshots
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
🔐 User authentication in SPA, built with Node.js and React (Koa, Passport, Redux, Redux-Saga and React Router). Local authentication – users can log in using username, passport and authentication t…
goddi (go dump domain info) dumps Active Directory domain information
A wiki focusing on aggregating and documenting various SQL injection methods
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
VisualCodeGrepper - Code security scanning tool.
Base16 template for xfce4-terminal
SSRF (Server Side Request Forgery) testing resources
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.
Tool to quickly update video modes in RetroPie - giving a retro CRT look.
PoC for an adaptive parallelised DNS prober
bash script to facilitate some aspects of an Android application assessment
RedSnarf is a pen-testing / red-teaming tool for Windows environments
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.